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1 DIGITAL VIDEO RECORDER EMPLOYING A UNIQUE ID TO INTERLOCK WITH 

2 ENCRYPTED VIDEO PROGRAMS STORED ON A STORAGE DEVICE 

3 

4 BACKGROUND OF THE INVENTION 

5 

6 Field of the Invention 

7 The present invention relates to digital video recorders. More particularly, the present 

8 invention relates to a digital video recorder employing a unique ID to interlock with encrypted 

9 video programs stored on a storage device. 
10 Description of the Prior Art 

0 1 1 Video cassette recorders (VCRs) in the past used a tape cassette storage medium to record 

CP 12 video programs in analog form. Copyright protection with VCRs is not a significant concern 

pi 13 since the quality of the video degrades when copied from one VCR to another. More recently, 

hj 14 however, digital video recorders (DVRs) have been introduced which store video programs in 

~ " 15 digital form. Copyright protection with DVRs is a significant concern since the video reproduces 

~= 16 without degradation when copied digitally from one DVR to another. 

?: 17 Prior art DVRs typically employ a conventional hard disk drive (HDD), such as an IDE 

:f 18 hard disk drive, as the digital storage device since HDDs have sufficient capacity to store video 

19 content and are relatively inexpensive due to their prevalent use in personal computers (PCs). 

20 Rather than design and manufacture a customized HDD for the DVR market, DVRs are 

21 constructed similar to a PC, including DVR host circuitry for interfacing with a commodity HDD 

22 which reduces the cost of the DVR. This design, however, has subjected the copyrighted video 

23 programs to unauthorized reproduction, for example, by eavesdropping while the copyrighted 

24 content is transferred from the DVR host circuitry to the HDD, or by removing the HDD and 

25 installing it in another DVR or in a PC. 

26 There is, therefore, a need to protect against unauthorized reproduction of copyrighted 

27 video programs in a DVR employing a cost effective, commodity HDD. 
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1 SUMMARY OF THE INVENTION 

2 The present invention may be regarded as a digital video recorder (DVR) comprising a 

3 storage device for storing an encrypted video program, a unique ID for interlocking the encrypted 

4 video program with the digital video recorder, and a cryptography facility. The cryptography 

5 facility comprises an encoder, responsive to the unique ID, for encrypting a plaintext video 

6 program into the encrypted video program stored on the storage device, and a decoder, 

7 responsive to the unique ID, for decrypting the encrypted video program stored on the storage 

8 device into the plaintext video program during playback. 

9 In one embodiment, the cryptography facility further comprises a key generator for 

10 generating a key from the unique ID. In another embodiment, the cryptography facility further 

1 1 comprises a pseudo-random sequence generator for generating a pseudo-random sequence, and 

12 the key generator comprises a seed value generator for generating a seed value from the unique 

13 ID, wherein the seed value for initializing the pseudo-random sequence generator. 

14 In yet another embodiment, the storage device comprises a hard disk drive. Any suitable 

15 hard disk drive may be employed, and in one embodiment, the hard disk drive is a commodity 

16 device compatible with a personal computer so as to reduce the cost of the DVR. 

17 The present invention may also be regarded as a method of processing video programs in 

18 a digital video recorder comprising a storage device. A plaintext video program is encrypted into 

19 an encrypted video program using a unique ID associated with the digital video recorder to 

20 interlock the encrypted video program with the digital video recorder. The encrypted video 

21 program is stored on the storage device and, during playback, the encrypted video program is 

22 read from the storage device and decrypted into the plaintext video program using the unique ID. 

23 BRIEF DESCRIPTION OF THE DRAWINGS 

24 FIG. 1 shows a digital video recorder according to an embodiment of the present 

25 invention as comprising a unique ID and a cryptography facility, responsive to the unique ID, for 

26 encrypting/decrypting video programs stored on a storage device. 

27 FIG. 2 shows a digital video recorder according to an embodiment of the present 
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1 invention wherein video programs are stored in encrypted form on a hard disk drive (HDD) using 

2 plaintext keys which are also encrypted using a pseudo-random sequence generated from a 

3 unique ID and stored in encrypted file system entries on the HDD. 

4 FIG. 3A shows a programmable file system (FS) polynomial implemented using a linear 

5 feedback shift register (LFSR) for generating the pseudo-random sequence of FIG. 2, wherein a 

6 seed value is generated for the LFSR from the unique ID. 

7 FIG. 3B shows a programmable FS polynomial implemented using a LFSR for 

8 generating the pseudo-random sequence of FIG. 2, wherein coefficient values are generated for 

9 the LFSR from the unique ID. 

10 FIG. 4A shows an LFSR for generating a pseudo-random sequence for encrypting a 
O 1 1 plaintext video program using a plaintext key as a seed value for the LFSR. 

m 12 FIG. 4B shows an LFSR for generating a pseudo-random sequence for encrypting a 

01 13 plaintext video program using a plaintext key, wherein a seed value is generated from the 

y 14 plaintext key. In an alternative embodiment, a plurality of segment seed values are generated 

f s 15 from the plaintext key wherein each segment seed value is used to encrypt a corresponding 

" 16 segment of the plaintext video program. 

™ 17 FIG. 4C shows an LFSR for generating a pseudo-random sequence for encrypting a 

O 18 plaintext video program using a plaintext key, wherein coefficient values are generated from the 

19 plaintext key. In an alternative embodiment, sets of coefficient values are generated from the 

20 plaintext key wherein each set of coefficient values is used to encrypt a corresponding segment 

2 1 of the plaintext video program. 

22 DESCRIPTION OF THE PREFERRED EMBODIMENTS 

23 FIG. 1 shows a digital video recorder (DVR) 1 according to an embodiment of the present 

24 invention comprising a storage device 3 for storing an encrypted video program, a unique ED 4 

25 for interlocking the encrypted video program with the digital video recorder, and a cryptography 

26 facility 14 comprising an encoder 24, responsive to the unique ID, for encrypting a plaintext 

27 video program 5A into the encrypted video program 7 stored on the storage device, and a 
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1 decoder 26, responsive to the unique ID, for decrypting the encrypted video 7 program stored on 

2 the storage device 3 into the plaintext video program 5B during playback. 

3 FIG. 2 shows a digital video recorder (DVR) 2 according to an embodiment of the present 

4 invention wherein the storage device 3 of FIG. 1 is implemented as a hard disk drive (HDD). 

5 The HDD 6 stores a plurality of encrypted video programs 8 and an encrypted file system, the 

6 encrypted file system comprising a plurality of encrypted file system entries 10 for decrypting 

7 the plurality of encrypted video programs 8. The DVR 2 further comprises host circuitry 12 for 

8 interfacing with the HDD 6, the host circuitry 12 comprising the cryptography facility 14 for 

9 encrypting plaintext file system entries 16A into the encrypted file system entries 10 stored on 

10 the HDD 6, and for decrypting the encrypted file system entries 10 read from the HDD 6 into 

11 plaintext file system entries 16B. The cryptography facility 14 comprises a pseudo-random 

12 sequence generator 20, responsive to the unique ID 4, for generating a pseudo-random sequence 

13 22. The cryptography facility 14 further comprises an encoder 24 for combining the pseudo- 

14 random sequence 22 with the plaintext file system entries 16A to generate the encrypted file 

15 system entries 10 stored on the HDD 6, and a decoder 26 for combining the pseudo-random 

16 sequence 22 with the encrypted file system entries 10 read from the HDD 6 to generate the 

17 plaintext file system entries 16B. 

18 In one embodiment, the encoder 24 of FIG. 2 performs the encryption operation by 

19 XORing each element (e.g., byte) of the plaintext file system entry 16A with a corresponding 

20 element (e.g., byte) of the pseudo-random sequence 22. Similarly, the decoder 26 performs the 

21 decryption operation by XORing each element (e.g., byte) of the encrypted file system entry 10 

22 with a corresponding element (e.g., byte) of the pseudo-random sequence 22 to generate the 

23 plaintext file system entry 16B. 

24 The host circuitry 12 of FIG. 2 further comprises a video controller 28 for receiving video 

25 data 30 from an external entity (e.g., a cable or satellite). The video controller 28 generates 

26 control signals 32 for controlling the operation of the cryptography facility 14 when recording an 

27 encrypted video program 8, together with the encrypted file system entry 10 for decrypting the 
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1 encrypted video program 8. The video controller also processes the decrypted file system entries 

2 16B so that the encrypted video programs 8 can be decrypted and output as video data 34 to a 

3 display device. Because the file system entries 10 are stored in encrypted form relative to the 

4 unique ID 4 assigned to the DVR 2, the encrypted video programs 8 stored on the HDD 6 cannot 

5 be decrypted by connecting the HDD 6 to another DVR or to a PC. In effect, the HDD 6 is 

6 married to the host circuitry 12 of the DVR 2 through the unique ID 4 which protects against 

7 unauthorized copying. In addition, the encrypted file system entries 10 are transparent to the 

8 operation of the HDD 6 so that any conventional HDD 6 may be employed without modification. 

9 In one embodiment, the plaintext file system entry 16A comprises a plaintext key for 

10 encrypting a plaintext video program into an encrypted video program 8 stored on the HDD 6. 

11 The cryptography facility 14 encrypts the plaintext video program into an encrypted video 

12 program 8 stored on the HDD 6, and encrypts the plaintext key into an encrypted key stored on 

13 the HDD 6 in an encrypted file system entry 10. In one embodiment, the encoder 24 combines 

14 the pseudo-random sequence 22 with the plaintext video program to generate the encrypted video 

15 program 8 stored on the HDD 6. 

16 In another embodiment, the encrypted file system entry 10 comprises an encrypted key 

17 for decrypting an encrypted video program 8 read from the HDD 6 into a plaintext video 

18 program. The cryptography facility 14 decrypts the encrypted key read from the encrypted file 

19 system entry 10 into a plaintext key, and decrypts the encrypted video program 8 read from the 

20 HDD 6 using the plaintext key. In one embodiment, the decoder 26 combines the pseudo- 

21 random sequence 22 with the encrypted video program 8 read from the HDD 6 to generate the 

22 plaintext video program. 

23 In one embodiment, the pseudo-random sequence generator 20 comprises a 

24 programmable file system (FS) polynomial for generating the pseudo-random sequence 22. In 

25 one embodiment, the programmable FS polynomial is programmed with coefficients which, in 

26 one embodiment, are generated by a coefficient generator responsive to the unique ID 4. In 

27 another embodiment, the programmable FS polynomial is programmed with a seed value which, 
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1 in one embodiment, is generated by a seed value generator responsive to the unique ID 4. 

2 FIG. 3A shows an embodiment of the present invention wherein the FS polynomial is 

3 implemented using a suitable linear feedback register (LFSR) 36. An LFSR may be implemented 

4 using a number of different configurations. The LFSR 36 of FIG. 3 A comprises a shift register 

5 38 comprising N storage elements which are initialized with a seed value 40 generated by a seed 

6 value generator 50 from the unique ID 4. A number of taps 42A-42E connect a corresponding 

7 number of the storage elements to an adder 44 for adding the values stored in the storage 

8 elements. The resulting sum 44 is fed back 46 to an input of the LFSR 36. The LFSR 36 is 

9 shifted from left to right, and the right most storage element 48 outputs each value of the pseudo- 
10 random sequence 22. 

Oil FIG. 3B shows an alternative embodiment of the present invention wherein the FS 

CP 12 polynomial is implemented using an LFSR 52 comprising programmable coefficients 54 0 -54 N . A 

fn 13 coefficient generator 56 generates coefficient values 58 for programming each of the 

yj 14 programmable coefficients 54 0 -54 N . In the embodiment shown in FIG. 3B, the coefficients are 

~ 15 binary valued and the programmable coefficients 54 0 -54 N are implemented as switches. 

.5KB. 

= 2 

r?J 16 In yet another embodiment of the present invention, the FS polynomial is implemented 

S 17 using an LFSR comprising both a programmable seed value and programmable coefficients 

!f 18 values for which are generated from the unique ID 4. 

19 In one embodiment, the seed value generator 50 implements a function f(x), such as a 

20 polynomial, with the unique ID 4 as the input argument x and the seed value 40 the result. In 

21 another embodiment, the seed value generator 50 comprises a programmable algorithm for 

22 computing the seed value 40 from the unique ID 4. This embodiment allows a DVR 

23 manufacture to select the function f(x) for implementing a line of DVRs. This embodiment also 

24 allows an external entity to update the programmable algorithm to protect against system 

25 compromise. For example, in one embodiment the DVR 2 of FIG. 2 comprises network circuitry 

26 for connecting to a network (e.g., through a cable or satellite), and a system administrator on the 

27 network periodically changes the programmable algorithm in a random manner. Thus, if an 
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1 attacker discovers the algorithm used by the seed value generator 50 to generate the seed value 

2 40, the compromise is only temporary until the system administrator updates the algorithm. 

3 In another embodiment, the coefficient value generator 56 implements a plurality of 

4 functions f(x), such as a plurality of polynomials, with the unique ID as the input argument x and 

5 the coefficient values 58 the result of each function f(x). The coefficient value generator 56 may 

6 also implement a programmable algorithm for computing the coefficient values 58 to facilitate 

7 different DVR manufactures and to protect against system compromise as described above. 

8 In another embodiment of the present invention, the seed value generator 50 comprises a 

9 seed table comprising a plurality of table entries, each table entry comprising a seed value. An 

10 index generator, responsive to the unique ID 4, generates an index into the seed table. In yet 

11 another embodiment, the coefficient value generator 56 comprises a coefficient table comprising 

12 a plurality of table entries, each table entry comprising coefficient values. An index generator, 

13 responsive to the unique ID 4, generates an index into the coefficient table. 

14 FIG. 4A shows an alternative embodiment of the present invention as comprising a 

15 programmable LFSR 59 for generating a pseudo-random sequence 22 used to encrypt a plaintext 

16 video program into an encrypted video program 8 stored on the HDD 6. A plaintext key 18 is 

17 used as a seed value for the LFSR 59, where the plaintext key 18 is associated with the plaintext 

18 video program. In one embodiment, the plaintext key is derived from the filename or other 

19 attribute of the video program. In another embodiment, the plaintext key is generated randomly 

20 using any suitable method, for example, by reading a system clock value just prior to encrypting 

2 1 the plaintext video. 

22 FIG. 4B shows an alternative embodiment of the present invention as comprising a 

23 programmable LFSR 60 for generating a pseudo-random sequence 22 used to encrypt a plaintext 

24 video program into an encrypted video program 8 stored on the HDD 6. A seed value generator 

25 62 generates a seed value 64 used to initialize the shift register 38. The seed value 64 is 

26 generated from the plaintext key 18 used to encrypt the plaintext video program. In one 

27 embodiment, the plaintext video program is encrypted in segments, and the seed value generator 



Y:\K35A\A0600-A0699\A0676\DOCS\k35a0676pafl .doc 9/29/00 



7 





PATENT 

ATTY DOCKET K35A0676 



1 62 generates a distinct seed value 64 for each segment number 66. Each segment seed value 64 

2 is essentially a distinct key for use in encrypting a corresponding segment of the plaintext video 

3 program. In this manner, compromise of a single key enables successful decrypting of only a 

4 segment of the encrypted video program. 



6 encrypting each segment of the plaintext video program, and the seed value generator 62 

7 generates a corresponding seed value 64 for each segment key. In another embodiment, the 

8 segment keys are computed from the plaintext key 18, and the seed value generator 62 generates 

9 a corresponding seed value 64 for each computed segment key. In one embodiment, the seed 
10 value generator 62 comprises a function f(x,y) for computing the segment seed values 64 wherein 

Oil the plaintext key 18 and segment number 66 are the input arguments x and y, and the segment 

Cn 12 seed value 64 is the result. Lookup tables may also be employed for generating the segment 

Cm 13 keys, and the algorithm for computing the segment keys may be programmably updated to 

hi 14 facilitate different DVR manufactures and to protect against system compromise as described 

a 15 above. 

J 16 FIG. 4C shows an alternative embodiment of the present invention as comprising a 

5 s i 

^ 17 programmable LFSR 68 for generating a pseudo-random sequence 22 used to encode a plaintext 

r? 18 video program into an encrypted video program 8 stored on the HDD 6. A coefficient value 

19 generator 70 generates a coefficient values 72 used to initialize the coefficients of the LFSR 68. 

20 The coefficient values 72 are generated from the plaintext key 18 used to encrypt the plaintext 

21 video program. In one embodiment, the plaintext video program is encrypted in segments, and 

22 the coefficient value generator 70 generates distinct coefficient values 72 for each segment 

23 number 66. Similar to the embodiment of FIG. 4B, each set of coefficient values 72 is 

24 essentially a distinct key for use in encrypting a corresponding segment of the plaintext video 

25 program so that compromise of a single key enables successful decrypting of only a segment of 

26 the encrypted video program. 

27 In one embodiment, the plaintext key 18 comprises a plurality of segment keys for 
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1 encrypting each segment of the plaintext video program, and the coefficient value generator 70 

2 generates a set of coefficient values 72 for each segment key. In another embodiment, the 

3 segment keys are computed from the plaintext key 18, and the coefficient value generator 70 

4 generates a corresponding set of coefficient values 72 for each computed segment key. In one 

5 embodiment, the coefficient value generator 70 comprises a function f(x,y) for computing the 

6 segment coefficient values 72 wherein the plaintext key 18 and segment number 66 are the input 

7 arguments x and y, and the segment coefficient values 72 are the result. Lookup tables may also 

8 be employed for generating the segment keys, and the algorithm for computing the segment keys 

9 may be programmably updated to facilitate different DVR manufactures and to protect against 
10 system compromise as described above. 

Oil In another embodiment, the LFSR 60 of FIG. 4B or the LFSR 68 of FIG. 4C is used to 

y3 

CH 12 decrypt an encrypted video program 8 in segments using the segment keys. In one embodiment, 

SI 

01 13 the plaintext key 18 comprises a plurality of segment keys which are encrypted and stored as an 

pi 

yd 14 encrypted file system entry 10 for use in decrypting the encrypted video program 8 during 

~ " 15 playback. In another embodiment, the plaintext key 18 is encrypted and stored as an encrypted 

J 16 file system entry 10. During playback, the encrypted key is decrypted into the plaintext key 18, 

2 17 and the plaintext key 18 is used to generate the segment keys for use in decrypting the encrypted 

Jf 18 video program 8 in segments. 

19 In one embodiment, the HDD 6 comprises a disk having a plurality of data tracks, where 

20 each data track comprises a plurality of data sectors. In the embodiments of FIG. 4B and 4C, a 

21 segment of a video program corresponds to a data sector. This simplifies the design since data is 

22 typically written to and read from a conventional HDD 6 in sector blocks. In one embodiment, 

23 the encrypted key for use in decrypting a corresponding sector is stored in the sector. 

24 In another embodiment of the present invention, the unique ID 4 is implemented using 

25 tamper and inspection resistant circuitry to protect against discovery. In one embodiment, the 

26 host circuitry 12 and unique ID 4 are implemented within an integrated circuit (IC), and the 

27 unique ID 4 is buried, scattered or otherwise concealed within the IC using any suitable method. 
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1 In yet another embodiment, at least part of the cryptography facility 14 (e.g., the seed value 

2 generator 62 of FIG. 4B or the coefficient value generator 70 of FIG. 4C) is implemented using 

3 tamper and inspection resistant circuitry to protect against discovery. An example of tamper and 

4 inspection resistant circuitry is disclosed in Tygar, J.D. and Yee, B.S., "Secure Coprocessors in 

5 Electronic Commerce Applications," Proceedings 1995 USENIX Electronic Commerce 

6 Workshop, 1995, New York, which is incorporated herein by reference. 

7 The embodiments of the present invention may be implemented in circuitry or software 

8 or both. The circuitry and/or software may be static or field programmable as described above. 

9 Software embodiments comprise code segments embodied on a computer readable medium, such 

10 as a hard disk, floppy disk, compact disk (CD), digital video disk (DVD), or programmable 

11 memory (e.g., an EEPROM). The code segments may be embodied on the computer readable 

12 medium in any suitable form, such as source code segments, assembly code segments, or 

13 executable code segments. 
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